Commands on Server Switch
Switch#vlan database
Switch(vlan)#vtp domain cisco
Switch(vlan)#vtp password cisco
Switch(vlan)#vtp server
Commands on Client Switch
Switch#vlan database
Switch(vlan)#vtp domain cisco
Switch(vlan)#vtp password cisco
Switch(vlan)#vtp client
Tuesday, May 25, 2010
Monday, May 17, 2010
RIP AUTHENTICATION
VCL#config t
VCL(config)#key chain virtual
VCL(config)#key 1
VCL(config)#key-string 12345
VCL(config)#interface serial 0/0
VCL(config-if)#ip rip authentication key-chain virtual
VCL(config-if)#ip rip authentication mode md5
VCL(config)#key chain virtual
VCL(config)#key 1
VCL(config)#key-string 12345
VCL(config)#interface serial 0/0
VCL(config-if)#ip rip authentication key-chain virtual
VCL(config-if)#ip rip authentication mode md5
Tuesday, May 11, 2010
KEYBOARD SHORTCUTS IN CISCO
Delete: Removes the character to the right of the cursor
Backspace: Removes the character to the left of the cursor
Up Arrow: Allows you to scroll forward through previous commands
Down Arrow: Allows you to scroll backwards through previous commands
Ctrl+A: Moves the cursor to the beginning of line
Ctrl+B: Moves one character backwards
Esc+B: Moves one word backwards
Ctrl+E: Moves the cursor to the end of the line
Ctrl+F: Moves one character forward
Esc+F: Moves one word forward
Ctrl+N (or down arrow): Displays previous commands entered
Ctrl+P (or up arrow): Displays the last command entered
Ctrl+R: Redisplays a line
Ctrl+U: Erase current a line
Ctrl+W: Erases current word
Ctrl+Z: Exits configuration mode to privileged EXEC mode
Monday, May 10, 2010
Dynamic Host Configuration Protocol (DHCP)
Dynamic Host Configuration Protocol (DHCP)
DHCP Description:
• DHCP works in a client/server mode. DHCP enables DHCP clients on an IP network to obtain their configurations from a DHCP server.
• DHCP is not intended for configuring routers, switches, and servers. These type of hosts need to have static IP addresses.
• DHCP works by providing a process for a server to allocate IP information to clients. Clients lease the information from the server for an administratively defined period. When the lease expires the client must ask for another address, although the client is typically reassigned the same address. Administrators typically prefer a network server to offer DHCP services because these solutions are scalable and relatively easy to manage. Cisco routers can use a Cisco IOS feature set, Easy IP, to offer an optional, full-featured DHCP server.
• Administrators set up DHCP servers to assign addresses from predefined pools. DHCP servers can also offer other information, such as DNS server addresses, WINS server addresses, and domain names. Most DHCP servers also allow the administrator to define specifically what client MAC addresses can be serviced and automatically assign them the same IP address each time. DHCP uses User Datagram Protocol (UDP) as its transport protocol. The client sends messages to the server on port 67. The server sends messages to the client on port 68.
What can DHCP offer to clients:
• IP address
• Gateway address
• Subnet mask
• DNS server address
• WINS server address
• Domain name and address
• And many other parameters
Camparing BOOTP and DHCP:
BOOTP and DHCP share some operational characteristics. Both protocols are client/server based and use UDP ports 67 and 68. Those ports are still known as BOOTP ports.
The four basic IP parameters that BOOTP offer:
• IP address
• Gateway address
• Subnet mask
• DNS server address
BOOTP does not dynamically allocate IP addresses to a host. When a client requests an IP address, the BOOTP server searches a predefined table for an entry that matches the MAC address for the client. If an entry exists, then the corresponding IP address for that entry is returned to the client. This means that the binding between the MAC address and the IP address must have already been configured in the BOOTP server.
DHCP operation:
The DHCP client configuration process uses the following steps:
1. A client must have DHCP configured when starting the network membership process. The client sends a request to a server requesting an IP configuration. Sometimes the client may suggest the IP address it wants, such as when requesting an extension to a DHCP lease. The client locates a DHCP server by sending a broadcast called a DHCPDISCOVER.
2. When the server receives the broadcast, it determines whether it can service the request from its own database. If it cannot, the server may forward the request on to another DHCP server. If it can, the DHCP server offers the client IP configuration information in the form of a unicast DHCPOFFER. The DHCPOFFER is a proposed configuration that may include IP address, DNS server address, and lease time.
3. If the client finds the offer agreeable, it will send another broadcast, a DHCPREQUEST, specifically requesting those particular IP parameters. Why does the client broadcast the request instead of unicasting it to the server? A broadcast is used because the first message, the DHCPDISCOVER, may have reached more than one DHCP server. If more than one server makes an offer, the broadcasted DHCPREQUEST allows the other servers to know which offer was accepted. The offer accepted is usually the first offer received.
4. The server that receives the DHCPREQUEST makes the configuration official by sending a unicast acknowledgment, the DHCPACK. It is possible, but highly unlikely, that the server will not send the DHCPACK. This may happen because the server may have leased that information to another client in the interim. Receipt of the DHCPACK message enables the client to begin using the assigned address immediately.
5. If the client detects that the address is already in use on the local segment it will send a DHCPDECLINE message and the process starts again. If the client received a DHCPNACK from the server after sending the DHCPREQUEST, then it will restart the process again.
6. If the client no longer needs the IP address, the client sends a DHCPRELEASE message to the server.
Depending on an organization's policies, it may be possible for an end user or an administrator to statically assign a host an IP address that belongs in the DHCP servers
address pool. Just in case, the Cisco IOS DHCP server always checks to make sure that an address is not in use before the server offers it to a client. The server will issue an ICMP echo request, or will ping, to a pool address before sending the DHCPOFFER to a client. Although configurable, the default number of pings used to check for a potential IP address conflict is two.
DHCP Relay:
DHCP clients use IP broadcasts to find the DHCP server on the segment. What happens when the server and the client are not on the same segment and are separated by a router? Routers do not forward these broadcasts.
However, routers, by default, will not forward client broadcasts beyond their subnet.
Because some clients are useless without services such as DHCP, one of two choices must be implemented. The administrator will need to place servers on all subnets or use the Cisco IOS helper address feature. Running services such as DHCP or DNS on several computers creates overhead and administrative difficulties making the first option inefficient. When possible, administrators should use the ip helper-address command to relay broadcast requests for these key UDP services.
By using the helper address feature, a router can be configured to accept a broadcast request for a UDP service and then forward it as a unicast to a specific IP address. By default, the ip helper-address command forwards the following eight UDP services:
• Time
• TACACS
• DNS
• BOOTP/DHCP Server
• BOOTP/DHCP Client
• TFTP
• NetBIOS Name Service
• NetBIOS datagram Service
Configuring DHCP
The DHCP service is enabled by default on versions of Cisco IOS that support it. To disable the service, use the no service dhcp command. Use the service dhcp global configuration command to re-enable the DHCP server process.
Below is an example for DHCP configuration.
DHCPRouter(config)#ip dhcp pool LAN1 * LAN1 is pool name
DHCPRouter(dhcp-config)#network 172.16.12.0 255.255.255.0
DHCPRouter(dhcp-config)#default-router 172.16.12.1 *Gateway
DHCPRouter(dhcp-config)#dns-server 172.16.1.2
DHCPRouter(dhcp-config)#domain-name cisco.com
DHCPRouter(dhcp-config)#netbios-name-server 172.16.12.10
DHCPRouter(dhcp-config)#exit
DHCPRouter(config)#ip dhcp excluded-address 172.16.12.1 172.16.12.10
Note: The excluded-address is a range or a single IP address that you don’t want to be assigned by DHCP, such as router interface address, servers addresses,..etc.
Verifying DHCP operation
Router#show ip dhcp binding
Router#show ip dhcp server statistics
DHCP Relay Configration:
RouterA(config)#int e0
RouterA(config-if)#ip helper-address 172.24.1.9
OR
RouterA(config)#int e1
RouterA(config-if)#ip directed-broadcast
RouterA(config)#int e0
RouterA(config-if)#ip helper-address 172.24.1.255
Reference - Eng. Mohammed Alani by certificationist.com
DHCP Description:
• DHCP works in a client/server mode. DHCP enables DHCP clients on an IP network to obtain their configurations from a DHCP server.
• DHCP is not intended for configuring routers, switches, and servers. These type of hosts need to have static IP addresses.
• DHCP works by providing a process for a server to allocate IP information to clients. Clients lease the information from the server for an administratively defined period. When the lease expires the client must ask for another address, although the client is typically reassigned the same address. Administrators typically prefer a network server to offer DHCP services because these solutions are scalable and relatively easy to manage. Cisco routers can use a Cisco IOS feature set, Easy IP, to offer an optional, full-featured DHCP server.
• Administrators set up DHCP servers to assign addresses from predefined pools. DHCP servers can also offer other information, such as DNS server addresses, WINS server addresses, and domain names. Most DHCP servers also allow the administrator to define specifically what client MAC addresses can be serviced and automatically assign them the same IP address each time. DHCP uses User Datagram Protocol (UDP) as its transport protocol. The client sends messages to the server on port 67. The server sends messages to the client on port 68.
What can DHCP offer to clients:
• IP address
• Gateway address
• Subnet mask
• DNS server address
• WINS server address
• Domain name and address
• And many other parameters
Camparing BOOTP and DHCP:
BOOTP and DHCP share some operational characteristics. Both protocols are client/server based and use UDP ports 67 and 68. Those ports are still known as BOOTP ports.
The four basic IP parameters that BOOTP offer:
• IP address
• Gateway address
• Subnet mask
• DNS server address
BOOTP does not dynamically allocate IP addresses to a host. When a client requests an IP address, the BOOTP server searches a predefined table for an entry that matches the MAC address for the client. If an entry exists, then the corresponding IP address for that entry is returned to the client. This means that the binding between the MAC address and the IP address must have already been configured in the BOOTP server.
DHCP operation:
The DHCP client configuration process uses the following steps:
1. A client must have DHCP configured when starting the network membership process. The client sends a request to a server requesting an IP configuration. Sometimes the client may suggest the IP address it wants, such as when requesting an extension to a DHCP lease. The client locates a DHCP server by sending a broadcast called a DHCPDISCOVER.
2. When the server receives the broadcast, it determines whether it can service the request from its own database. If it cannot, the server may forward the request on to another DHCP server. If it can, the DHCP server offers the client IP configuration information in the form of a unicast DHCPOFFER. The DHCPOFFER is a proposed configuration that may include IP address, DNS server address, and lease time.
3. If the client finds the offer agreeable, it will send another broadcast, a DHCPREQUEST, specifically requesting those particular IP parameters. Why does the client broadcast the request instead of unicasting it to the server? A broadcast is used because the first message, the DHCPDISCOVER, may have reached more than one DHCP server. If more than one server makes an offer, the broadcasted DHCPREQUEST allows the other servers to know which offer was accepted. The offer accepted is usually the first offer received.
4. The server that receives the DHCPREQUEST makes the configuration official by sending a unicast acknowledgment, the DHCPACK. It is possible, but highly unlikely, that the server will not send the DHCPACK. This may happen because the server may have leased that information to another client in the interim. Receipt of the DHCPACK message enables the client to begin using the assigned address immediately.
5. If the client detects that the address is already in use on the local segment it will send a DHCPDECLINE message and the process starts again. If the client received a DHCPNACK from the server after sending the DHCPREQUEST, then it will restart the process again.
6. If the client no longer needs the IP address, the client sends a DHCPRELEASE message to the server.
Depending on an organization's policies, it may be possible for an end user or an administrator to statically assign a host an IP address that belongs in the DHCP servers
address pool. Just in case, the Cisco IOS DHCP server always checks to make sure that an address is not in use before the server offers it to a client. The server will issue an ICMP echo request, or will ping, to a pool address before sending the DHCPOFFER to a client. Although configurable, the default number of pings used to check for a potential IP address conflict is two.
DHCP Relay:
DHCP clients use IP broadcasts to find the DHCP server on the segment. What happens when the server and the client are not on the same segment and are separated by a router? Routers do not forward these broadcasts.
However, routers, by default, will not forward client broadcasts beyond their subnet.
Because some clients are useless without services such as DHCP, one of two choices must be implemented. The administrator will need to place servers on all subnets or use the Cisco IOS helper address feature. Running services such as DHCP or DNS on several computers creates overhead and administrative difficulties making the first option inefficient. When possible, administrators should use the ip helper-address command to relay broadcast requests for these key UDP services.
By using the helper address feature, a router can be configured to accept a broadcast request for a UDP service and then forward it as a unicast to a specific IP address. By default, the ip helper-address command forwards the following eight UDP services:
• Time
• TACACS
• DNS
• BOOTP/DHCP Server
• BOOTP/DHCP Client
• TFTP
• NetBIOS Name Service
• NetBIOS datagram Service
Configuring DHCP
The DHCP service is enabled by default on versions of Cisco IOS that support it. To disable the service, use the no service dhcp command. Use the service dhcp global configuration command to re-enable the DHCP server process.
Below is an example for DHCP configuration.
DHCPRouter(config)#ip dhcp pool LAN1 * LAN1 is pool name
DHCPRouter(dhcp-config)#network 172.16.12.0 255.255.255.0
DHCPRouter(dhcp-config)#default-router 172.16.12.1 *Gateway
DHCPRouter(dhcp-config)#dns-server 172.16.1.2
DHCPRouter(dhcp-config)#domain-name cisco.com
DHCPRouter(dhcp-config)#netbios-name-server 172.16.12.10
DHCPRouter(dhcp-config)#exit
DHCPRouter(config)#ip dhcp excluded-address 172.16.12.1 172.16.12.10
Note: The excluded-address is a range or a single IP address that you don’t want to be assigned by DHCP, such as router interface address, servers addresses,..etc.
Verifying DHCP operation
Router#show ip dhcp binding
Router#show ip dhcp server statistics
DHCP Relay Configration:
RouterA(config)#int e0
RouterA(config-if)#ip helper-address 172.24.1.9
OR
RouterA(config)#int e1
RouterA(config-if)#ip directed-broadcast
RouterA(config)#int e0
RouterA(config-if)#ip helper-address 172.24.1.255
Reference - Eng. Mohammed Alani by certificationist.com
Sunday, May 9, 2010
Important Port Numbers
Some Important Port Numbers
Databases
3306 MySQL
1433 MS SQL Server
5432 PostgreSQL
Remote Access - Graphical
3389 MS Remote Desktop
5800 VNC-HTTP
5900 VNC
Remote Access - Console
22 SSH
23 Telnet
512 Rexec
513 Rlogin
514 RSH
Remote Data Transfer & Management
20 FTP Data
21 FTP
69 TFTP
2049 NFS
Directory Service
389 LDAP
636 LDAP Secure
Web
80 HTTP
443 HTTPS
3128 Squid Web Proxy
Mail & Chat
25 SMTP
110 POP3
995 POP3S
143 IMAP
993 IMAPS
5222 Jabber
5223 Jabber SSL
Infrastructure Management
53 DNS
1512 WINS
67 DHCP Server
68 DHCP Client
123/UDP NTP
161 SNMP
Databases
3306 MySQL
1433 MS SQL Server
5432 PostgreSQL
Remote Access - Graphical
3389 MS Remote Desktop
5800 VNC-HTTP
5900 VNC
Remote Access - Console
22 SSH
23 Telnet
512 Rexec
513 Rlogin
514 RSH
Remote Data Transfer & Management
20 FTP Data
21 FTP
69 TFTP
2049 NFS
Directory Service
389 LDAP
636 LDAP Secure
Web
80 HTTP
443 HTTPS
3128 Squid Web Proxy
Mail & Chat
25 SMTP
110 POP3
995 POP3S
143 IMAP
993 IMAPS
5222 Jabber
5223 Jabber SSL
Infrastructure Management
53 DNS
1512 WINS
67 DHCP Server
68 DHCP Client
123/UDP NTP
161 SNMP
Thursday, May 6, 2010
OSI - OPEN SYSTEM INTERCONNECTION
• The Application, Presentation and Session layers of the OSI model map directly to the Application layer of the TCP/IP Model.
• The Transport Layer of the OSI maps directly to the Transport layer of the TCP/IP Model.
• The Network Layer of the OSI maps directly to the Internet Layer of the TCP/IP Model.
• The Data Link and Physical Layers of the OSI map directly to the Network Access Layer of the TCP/IP Model.
• Network Models help software vendors create products that are interoperable.
OSI – Layer 7 – Application
• End users themselves interact with the network.
• Authentication services (not encryption, which runs at layer 6).
• Ensures that remote communications partner is available.
• That the needed communication partner is available.
• Both ends of the communication agree on procedures including data integrity, privacy and error recovery.
• Anything that requires the end user to enter a request is an application layer protocol, including:
o Telnet
o HTTP
o FTP
o SNMP
OSI – Layer 6 – Presentation
• Can be described with a question, “How should this data be presented?”
• Encryption occurs at this layer.
• Primary tasks the presentation layer is concerned with:
o Compatibility with the Operating System.
o Proper encapsulation of data for network transmission.
o Data Formatting.
o Data Encryption and decryption, compression and translation.
• Some file types which are used at the presentation layer include:
o JPEG
o ASCII
o GIF
o MPEG
• Presents data to the Application layer and is responsible for data translation and code formatting. It is essentially a translator and provides coding and conversion functions.
OSI – Layer 5 – Session
• Layer 5 is the “manager” of the two-way communication between two remote hosts.
• Handles the creation, maintenance and teardown of communications between those two hosts.
• This overall communication itself is referred to as a session.
OSI – Layer 4 – Transport
• The Transport Layers purpose is to establish a logical end-to-end connection between two systems, segment data received from the upper layers of the OSI model, and to make sure data gets to the destination in the correct order and free of errors.
• There are two methods for transporting data at the Transport Layer:
o Connection-orientated, referring to TCP.
o Connectionless, referring to UDP.
OSI – Layer 3 – Network
• IP runs at this layer.
• Sometimes called “The routing layer”.
• Routing is a two-question process:
o What valid path exists from the local router to a given destination.
o What is the best path to take to get there.
OSI – Layer 2 – Data Link
• Devices which operate at the Data Link Layer:
o Switches.
o Wireless Access Points.
o Cable and DSL modems.
• Ethernet.
• High Data Link Control (HDLC).
• Point-to-Point Protocol (PPP).
• Frame Relay.
• Provides error detection, but not error recovery using Frame Check Sequence (FCS).
• Media Access Control (MAC) addresses are used at this layer.
OSI – Layer 1 – Physical
• The Physical layer does two things, it sends and receives bits. 100101011101010101101
• The Physical layer specifies the electrical, mechanical, procedural, and functional requirements for activating, maintaining, and deactivating a physical link between end systems.
Subscribe to:
Posts (Atom)